Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
File: UlG0CzMZisWh7fUP_whigWAzXf0.mft (raw, json)
Hash identifier: BuekPrN7mb3TOiC7oqlWgRi7HtbbMdECuvTz3sEVWSw=
Subject key identifier: 43:05:0E:0D:9F:0D:01:CA:2A:F2:1F:95:A9:3C:73:40:AD:D6:4C:B8
Authority key identifier: 52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
Certificate issuer: /CN=5251b40b33198ac5a1edf50fff08628160335dfd
Certificate serial: 0197B745078CA8A06F0CA28363F6D91768D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
Manifest number: 14B4
Signing time: Sat 28 Jun 2025 16:00:43 +0000
Manifest this update: Sat 28 Jun 2025 16:00:43 +0000
Manifest next update: Sun 29 Jun 2025 16:00:43 +0000
Files and hashes: 1: B5jBrigaJO3-AA-t_YN4JZyKlOc.roa (hash: rGNTEj/GGFLwPvW+NfWJ0mtsiCJfkPNhKXWRWEo8b5k=)
2: UlG0CzMZisWh7fUP_whigWAzXf0.crl (hash: /D8jGbQkjN7sXTsLUkuPUT3t1xU+qbwtm187PeCpIW0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:07:8c:a8:a0:6f:0c:a2:83:63:f6:d9:17:68:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5251b40b33198ac5a1edf50fff08628160335dfd
Validity
Not Before: Jun 28 16:00:43 2025 GMT
Not After : Jun 29 16:00:43 2025 GMT
Subject: CN=43050e0d9f0d01ca2af21f95a93c7340add64cb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1b:59:cf:18:1c:2d:91:ae:e7:29:df:e6:f0:
95:b7:0e:7a:82:1b:72:f8:db:d2:d5:09:20:1f:c5:
f0:e6:52:70:8e:02:6a:2d:32:7c:46:1b:be:a8:38:
c5:5a:11:61:ce:40:f6:31:84:d0:32:b4:85:f3:95:
04:36:cc:86:95:6a:3c:ff:40:74:0d:63:09:b9:27:
64:b5:6d:4d:74:09:b5:6a:63:e3:c9:97:f9:f4:b5:
0b:89:23:68:5b:2f:66:05:75:89:7a:45:9e:6b:58:
e8:8b:04:64:c6:f3:28:9b:18:4a:18:f8:65:04:10:
3e:1f:10:6f:4d:31:c1:30:76:11:7c:dd:b9:36:60:
84:ff:97:43:9c:02:0b:9d:f5:63:3b:4d:cc:2d:da:
d4:ee:d6:98:f8:8b:c7:81:8d:75:2b:66:44:ee:d7:
df:db:30:98:91:1f:47:99:2c:73:9e:94:f2:8e:5e:
72:8b:0f:a5:9a:a1:37:f6:15:75:83:9f:d5:e4:39:
25:a9:a6:2b:80:20:d4:8b:29:fe:7c:f9:f5:48:6e:
49:fc:91:39:ae:4e:b8:06:6e:55:00:3d:d7:81:18:
f1:65:ea:24:71:bf:60:f6:24:05:fb:8e:d2:22:a5:
32:15:0a:4c:1c:a3:18:87:13:68:a3:49:a2:73:e2:
6e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:05:0E:0D:9F:0D:01:CA:2A:F2:1F:95:A9:3C:73:40:AD:D6:4C:B8
X509v3 Authority Key Identifier:
keyid:52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:73:d8:77:3c:b1:21:6d:42:ba:ee:4c:0b:78:ad:ce:a8:79:
e2:cb:53:e1:70:f9:5e:d1:e9:4c:98:76:ff:ee:61:c9:2e:8d:
c7:f8:59:30:f8:f0:88:11:7b:ba:8e:36:20:8f:90:7d:99:8f:
13:e0:c0:dd:a0:0d:1e:39:c8:36:f1:a0:de:69:6d:3e:91:62:
58:f9:ec:38:90:6f:4b:d0:9d:d8:59:38:81:15:97:d9:07:35:
14:30:44:b6:e0:76:a4:63:ed:4e:34:6f:23:85:b3:52:d8:a0:
1a:15:95:4a:84:30:83:32:ac:ae:7e:63:27:3c:0a:5a:c8:38:
c8:29:01:00:bf:5f:7e:d2:be:fc:66:2b:76:3c:5c:50:9e:eb:
e1:1b:bc:1d:93:d0:50:2d:41:ee:f9:68:05:24:d6:18:f8:1d:
c1:2c:74:44:81:08:61:4d:4e:cb:77:67:11:dc:02:4e:e8:49:
b9:f8:bb:3c:1e:2e:b2:15:34:dc:70:cf:c4:3e:3f:f7:02:1f:
c3:78:69:f5:7b:2f:8e:3c:34:df:61:ea:ec:d9:b4:83:4d:f4:
4e:22:cd:42:9a:b1:3e:f6:3d:9e:ff:05:7d:9b:42:b7:bf:cf:
01:e5:3d:8d:1f:ff:2a:c8:0c:00:1e:f3:86:3e:ec:a0:d3:63:
71:33:4e:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:25:23 2025 by rpki-client